CVE-2007-1659

Name of the Vulnerable Software and Affected Versions libpcrecpp0 versions (affected versions not specified) libpcre3 versions (affected versions not specified) libpcre versions prior to 7.3-r1 pcre-32bit versions (affected versions not specified) pcregrep versions (affected versions not specified) pcre versions (affected versions not specified) libpcre3-dev versions (affected versions not specified) pgrep versions (affected versions not specified) pcre-devel versions (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the PCRE library, which can lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. The vulnerabilities allow context-dependent attackers to cause a denial of service and possibly execute arbitrary code via regex patterns containing unmatched "QE" sequences with orphan "E" codes.

Recommendations For libpcrecpp0, update to a version that contains a fix for this issue. For libpcre3, update to a version that contains a fix for this issue. For libpcre, update to version 7.3-r1 or later. For pcre-32bit, update to a version that contains a fix for this issue. For pcregrep, update to a version that contains a fix for this issue. For pcre, update to a version that contains a fix for this issue. For libpcre3-dev, update to a version that contains a fix for this issue. For pgrep, update to a version that contains a fix for this issue. For pcre-devel, update to a version that contains a fix for this issue.